1ce6c9ee5f93022301b5ebb39c41af0344445b3cf15f8af614d384311ec8c2be | Triage

Sharing

General

Target

1ce6c9ee5f93022301b5ebb39c41af0344445b3cf15f8af614d384311ec8c2be
Size

152KB
MD5

436c65ef500df26413151232e36e7a10
SHA1

38c26ff2864f47e99e08489a0fe90670b9cd3aaa
SHA256

1ce6c9ee5f93022301b5ebb39c41af0344445b3cf15f8af614d384311ec8c2be
SHA512

4794b5b4a04aa8db747fd68a5e6379b00156ca94345c4e34f58680b07a57f4cd80c5e4882b29a8aa409327cdd286a40ea36a1053d8106cafd5f5b52863daacee
SSDEEP

3072:zuF5MydXpiYNout1LTqm86CTqCnskPo3egH7MLaKyvkLi+yHqGNr:z2ldRNoSxq5HskPLgHxKyvkL3yKs

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
upx

Processes:

resource yara_rule

sample upx

Files

1ce6c9ee5f93022301b5ebb39c41af0344445b3cf15f8af614d384311ec8c2be
.dll windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

legacy_AddSecmodDB
legacy_DeleteSecmodDB
legacy_Open
legacy_ReadSecmodDB
legacy_ReleaseSecmodDBData
legacy_SetCryptFunctions
legacy_Shutdown

Sections

UPX0
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE